Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ca71b1d831e98f04ec288117eec74fb4

  • Size

    1.3MB

  • Sample

    240315-eppezaaa32

  • MD5

    ca71b1d831e98f04ec288117eec74fb4

  • SHA1

    9ae569fcaf8cccddde5b8bb1844ed37dc2e4ec96

  • SHA256

    5e22fec31e353c6851fa026dab36eb0d4b53f16c2a0b150b36930ec7720cf0cb

  • SHA512

    5862a47b0a7a46cdd5ca06af1cca4f73a170c98b861625bc789b8643bf96e8944fdac0a37f96288ec438ed6282696072c3d2cc49be0863ef6cc0b2c4cfa24d96

  • SSDEEP

    12288:UZWtI6RkbupOB07yOB0fOdupOB07yOB0fOdupOB07yOB0C2:UuhaKO0yOOO0yOOO0yOC

Score
10/10

Malware Config

Targets

    • Target

      ca71b1d831e98f04ec288117eec74fb4

    • Size

      1.3MB

    • MD5

      ca71b1d831e98f04ec288117eec74fb4

    • SHA1

      9ae569fcaf8cccddde5b8bb1844ed37dc2e4ec96

    • SHA256

      5e22fec31e353c6851fa026dab36eb0d4b53f16c2a0b150b36930ec7720cf0cb

    • SHA512

      5862a47b0a7a46cdd5ca06af1cca4f73a170c98b861625bc789b8643bf96e8944fdac0a37f96288ec438ed6282696072c3d2cc49be0863ef6cc0b2c4cfa24d96

    • SSDEEP

      12288:UZWtI6RkbupOB07yOB0fOdupOB07yOB0fOdupOB07yOB0C2:UuhaKO0yOOO0yOOO0yOC

    Score
    10/10
    • Modifies visibility of file extensions in Explorer

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

    • Sets file execution options in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks